Release date:
Updated on:
Affected Systems:
Cisco ios xe <= 3.10 S (. 2)
Description:
--------------------------------------------------------------------------------
Bugtraq id: 67093
CVE (CAN) ID: CVE-2014-2183
Cisco IOS is an interconnected network operating system used on most Cisco system routers and network switches.
Security Vulnerabilities exist in the implementation of the L2TP module of Cisco ios xe on Cisco ASR 1000 series routers. authenticated remote attackers can exploit this vulnerability to overload the ESP card on the affected devices, this causes a denial of service.
<* Source: Cisco
Link: http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2183
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Cisco
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.cisco.com/go/psirt
Http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2183